Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/tyDA-P58Nh2dwxEV-ZLHvZp79Jg.roa
File: tyDA-P58Nh2dwxEV-ZLHvZp79Jg.roa (raw, json)
Hash identifier: kDqKnkByKPrThD+4sF7dwLbz0gJiue9uH/scQOIpoDM=
Subject key identifier: B7:20:C0:F8:FE:7C:36:1D:9D:C3:11:15:F9:92:C7:BD:9A:7B:F4:98
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1DBBCF2D
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/tyDA-P58Nh2dwxEV-ZLHvZp79Jg.roa
Signing time: Tue 05 Apr 2022 06:32:08 +0000
ROA not before: Tue 05 Apr 2022 06:32:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60784
IP address blocks: 37.60.136.0/24 maxlen: 24
31.13.227.0/24 maxlen: 24
87.121.78.0/24 maxlen: 24
87.121.76.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 498847533 (0x1dbbcf2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 5 06:32:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b720c0f8fe7c361d9dc31115f992c7bd9a7bf498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f7:39:84:e2:10:be:52:ec:99:b9:01:c1:ab:
df:c7:2b:44:bf:91:18:6f:81:99:08:ac:cd:fa:3c:
a1:d3:d1:7f:ca:aa:74:3d:47:e2:9d:30:9a:d4:3d:
d6:65:b3:ff:03:ea:31:2e:dd:d6:20:5a:d7:ee:2d:
62:40:de:04:c1:5b:56:d9:8d:8e:9b:52:77:b9:e6:
b7:fd:91:1d:c8:56:3c:f9:82:6e:0b:73:fe:b6:bb:
2f:20:4e:81:19:e0:b3:09:ec:e5:d3:16:8d:cc:3d:
f6:d3:23:b3:e4:33:e3:c3:0d:a4:fc:c1:89:36:38:
06:eb:cf:2e:4d:bc:0f:06:0b:44:2a:9f:ac:5a:b0:
05:38:b1:6a:b2:95:df:91:67:1c:22:26:f2:d4:3a:
27:a2:d0:0e:4b:7f:2b:01:05:74:8f:b2:c5:cc:59:
c2:1a:10:47:71:4a:f9:e0:98:e0:c4:72:2a:d8:f1:
28:b0:77:f4:d3:3a:ef:35:5a:f1:6a:54:c0:fe:47:
93:8c:af:2e:cf:d6:4d:09:65:ab:5b:43:ff:b3:59:
50:49:18:2f:34:68:a5:52:40:47:5d:f0:91:61:9a:
63:2e:e6:e4:d9:2f:f6:2d:8a:e1:da:53:af:0b:4d:
92:8f:10:27:bc:a9:f8:dd:79:17:a9:fe:2a:22:ba:
3f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:20:C0:F8:FE:7C:36:1D:9D:C3:11:15:F9:92:C7:BD:9A:7B:F4:98
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/tyDA-P58Nh2dwxEV-ZLHvZp79Jg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.227.0/24
37.60.136.0/24
87.121.76.0-87.121.78.255
Signature Algorithm: sha256WithRSAEncryption
a1:3d:89:68:d4:54:6d:64:ed:94:05:32:22:d4:23:36:5e:a3:
e9:0a:41:4b:5d:4c:d9:22:98:2d:1d:6f:9e:67:a8:e4:f2:f9:
ca:92:b3:60:cd:e1:3c:00:a9:80:58:ee:63:b8:61:a2:b1:f9:
d8:78:99:a3:e7:90:cd:54:fb:19:93:3e:0e:75:13:72:54:44:
52:69:bf:4a:0c:67:05:98:30:97:f0:c4:5d:d2:69:76:f1:8a:
1d:02:58:83:23:a7:ea:da:90:15:b1:52:8a:4b:68:3a:12:b7:
97:f1:b7:e3:4e:ad:b4:4c:6c:9c:ca:6f:fa:5e:55:d6:49:8e:
fd:26:2a:1c:cd:b4:98:a8:7a:a2:b3:f0:4a:a4:e7:bd:e0:ff:
fd:3a:18:7c:7b:e0:30:87:0e:21:55:09:1d:aa:f5:e9:dd:e6:
e5:22:35:a0:d2:f1:44:8c:01:8c:d0:21:de:28:84:b3:b6:82:
5c:e4:ff:05:78:74:73:33:57:2d:e7:c2:57:46:fa:08:de:cd:
ff:ec:e6:01:58:1b:9f:ed:15:fe:2d:8d:43:47:19:0a:54:4a:
e3:1b:cd:43:39:a0:be:90:51:4c:77:52:39:17:98:be:66:f8:
6c:66:97:76:45:39:fe:d6:d2:28:e8:75:e1:70:14:ee:4f:89:
ae:05:ad:81
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgIEHbvPLTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MmM0YWMzZTNjNDNkNzBkMDUzNDljODE1YmFhZGQzOGFkNzc1ZTlkMB4XDTIyMDQw
NTA2MzIwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjcyMGMwZjhmZTdj
MzYxZDlkYzMxMTE1Zjk5MmM3YmQ5YTdiZjQ5ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM33OYTiEL5S7Jm5AcGr38crRL+RGG+BmQiszfo8odPRf8qq
dD1H4p0wmtQ91mWz/wPqMS7d1iBa1+4tYkDeBMFbVtmNjptSd7nmt/2RHchWPPmC
bgtz/ra7LyBOgRngswns5dMWjcw99tMjs+Qz48MNpPzBiTY4BuvPLk28DwYLRCqf
rFqwBTixarKV35FnHCIm8tQ6J6LQDkt/KwEFdI+yxcxZwhoQR3FK+eCY4MRyKtjx
KLB39NM67zVa8WpUwP5Hk4yvLs/WTQllq1tD/7NZUEkYLzRopVJAR13wkWGaYy7m
5Nkv9i2K4dpTrwtNko8QJ7yp+N15F6n+KiK6P0MCAwEAAaOCAh0wggIZMB0GA1Ud
DgQWBBS3IMD4/nw2HZ3DERX5kse9mnv0mDAfBgNVHSMEGDAWgBQixKw+PEPXDQU0
nIFbqt04rXdenTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lzU3NQanhEMXcwRk5KeUJXNnJkT0sxM1hwMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDMvOTEzYTNhLWY1NTAtNDZmMC1hY2M3LWNkM2NhNTk3NTcxMi8x
L3R5REEtUDU4TmgyZHd4RVYtWkxIdlpwNzlKZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMv
OTEzYTNhLWY1NTAtNDZmMC1hY2M3LWNkM2NhNTk3NTcxMi8xL0lzU3NQanhEMXcw
Rk5KeUJXNnJkT0sxM1hwMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAz
BggrBgEFBQcBBwEB/wQkMCIwIAQCAAEwGgMEAB8N4wMEACU8iDAMAwQCV3lMAwQA
V3lOMA0GCSqGSIb3DQEBCwUAA4IBAQChPYlo1FRtZO2UBTIi1CM2XqPpCkFLXUzZ
IpgtHW+eZ6jk8vnKkrNgzeE8AKmAWO5juGGisfnYeJmj55DNVPsZkz4OdRNyVERS
ab9KDGcFmDCX8MRd0ml28YodAliDI6fq2pAVsVKKS2g6EreX8bfjTq20TGycym/6
XlXWSY79JioczbSYqHqis/BKpOe94P/9Ohh8e+Awhw4hVQkdqvXp3eblIjWg0vFE
jAGM0CHeKISztoJc5P8FeHRzM1ct58JXRvoI3s3/7OYBWBuf7RX+LY1DRxkKVErj
G81DOaC+kFFMd1I5F5i+ZvhsZpd2RTn+1tIo6HXhcBTuT4muBa2B
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:43 2023 by rpki-client on console-ams.rpki-client.org